I'm just sending this mail to the list because I've managed to hack Trend Micro's Interscan Message Security Suite (IMSS) into working with qmail-scanner, and inquiring minds may want to know how it is done.
Firstly, I have to say that IMSS is a real cow to implement (compared to VirusWall) because they almost force you to use Postfix and all their daemons if you want any decent support from them. If you want to break away from the default config in the manual and use something other than Postfix, or even use twin IMSS daemons for incoming/outgoing mail, there's a lot of tweaking involved. Safe to say, many of you will probably avoid IMSS for qmail-scanner anyway - but some customers just want you to hack things, so.... IMSS has the vscan command line scanner in there (just like Trend Micro's VirusWall does), but qmail-scanner can't get at it initially due to permissions and the way IMSS installs its libraries (and a billion and one other things, but don't get me started). Therefore, assuming that you installed IMSS to /opt/trend/imss and did away with most of the install options (including WebGUI and Postfix options), start doing this:- # ln -s /opt/trend/imss/lib/ /etc/iscan # ln -s /opt/trend/imss/lib/libvsapi.so /lib # ln -s /opt/trend/imss/bin/vscan /etc/iscan # chmod -R o+x /etc/iscan # chmod -R o+r /etc/iscan # chmod 755 /opt/trend/imss/bin # chmod 755 /opt/trend/imss/bin/vscan as a non privileged user, you should now be able to test this by doing: $ /etc/iscan/vscan -v and seeing a message to say that vscan is working. qmail-scanner can now detect this as VirusWall's vscan and use it accordingly. To now severly cripple IMSS but just leave enough functionality for it to get updates, you'll need to hack the /opt/trend/imss/script/S99IMSS script so that you have an "exit 0" under "#!/bin/sh". That way IMSS will attempt to start imssd after updates and fail hopelessly. IMSS's regserver daemon must not die however, or you can forget about virus updates. Naturally all of IMSS other functions (such as word and spam filtering) are now rendered completely useless. Yes I know it's a waste, but Trend could always just sell vscan seperately too (I doubt it will happen though). Now you just need to modify /opt/trend/imss/config/imss.ini to configure what's left of IMSS to get updates. Do the following: ---------------------- enable_postfix_ui=no smtp_enable_proxy=no pop3_enable_proxy=no Put in your licence info:- ----------------------- imss_serial_no=<serial no.> emanager_serial_no=<serial no.> Set time for updates. The below example sets it for every hour, which is probably the best thing to do since they get updated regularly. ------------------------- Frequency=Hourly Hour=1:00 APM=AM Virus update notification ------------------------ NotificationSMTPAddr=127.0.0.1:25 [EMAIL PROTECTED] MonitorScheduleUpdate=1 and that's it. ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ Qmail-scanner-general mailing list Qmail-scanner-general@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
